v/vlib/crypto/hmac/hmac.v

// HMAC: Keyed-Hashing for Message Authentication  implemented in v
// implementation based on https://tools.ietf.org/html/rfc2104
module hmac

import crypto.internal.subtle

const (
	ipad = []u8{len: 256, init: 0x36} // TODO is 256 enough??
	opad = []u8{len: 256, init: 0x5C}
	npad = []u8{len: 256, init: 0}
)

// new returns a HMAC byte array, depending on the hash algorithm used.
pub fn new(key []u8, data []u8, hash_func fn ([]u8) []u8, blocksize int) []u8 {
	mut b_key := []u8{}
	if key.len <= blocksize {
		b_key = key.clone() // TODO: remove .clone() once https://github.com/vlang/v/issues/6604 gets fixed
	} else {
		b_key = hash_func(key)
	}
	if b_key.len < blocksize {
		b_key << hmac.npad[..blocksize - b_key.len]
	}
	mut inner := []u8{}
	for i, b in hmac.ipad[..blocksize] {
		inner << b_key[i] ^ b
	}
	inner << data
	inner_hash := hash_func(inner)
	mut outer := []u8{cap: b_key.len}
	for i, b in hmac.opad[..blocksize] {
		outer << b_key[i] ^ b
	}
	outer << inner_hash
	digest := hash_func(outer)
	return digest
}

// equal compares 2 MACs for equality, without leaking timing info.
// Note: if the lengths of the 2 MACs are different, probably a completely different
// hash function was used to generate them => no useful timing information.
pub fn equal(mac1 []u8, mac2 []u8) bool {
	return subtle.constant_time_compare(mac1, mac2) == 1
}
crypto: add hmac module (#6614) 2020-10-14 12:25:58 +02:00			`// HMAC: Keyed-Hashing for Message Authentication implemented in v`
			`// implementation based on https://tools.ietf.org/html/rfc2104`
			`module hmac`

crypto.hmac: implement hmac.equal/2 too 2020-10-14 16:21:43 +02:00			`import crypto.internal.subtle`

crypto: add hmac module (#6614) 2020-10-14 12:25:58 +02:00			`const (`
all: replace []byte with []u8 2022-04-15 14:35:35 +02:00			`ipad = []u8{len: 256, init: 0x36} // TODO is 256 enough??`
			`opad = []u8{len: 256, init: 0x5C}`
			`npad = []u8{len: 256, init: 0}`
crypto: add hmac module (#6614) 2020-10-14 12:25:58 +02:00			`)`

crypto: add missing documentation to all pub functions (#8251) 2021-01-23 13:33:49 +01:00			`// new returns a HMAC byte array, depending on the hash algorithm used.`
all: replace []byte with []u8 2022-04-15 14:35:35 +02:00			`pub fn new(key []u8, data []u8, hash_func fn ([]u8) []u8, blocksize int) []u8 {`
			`mut b_key := []u8{}`
crypto: add hmac module (#6614) 2020-10-14 12:25:58 +02:00			`if key.len <= blocksize {`
			`b_key = key.clone() // TODO: remove .clone() once https://github.com/vlang/v/issues/6604 gets fixed`
			`} else {`
			`b_key = hash_func(key)`
			`}`
			`if b_key.len < blocksize {`
tools: make `v test-cleancode` test everything by default (#10050) 2021-05-08 12:32:29 +02:00			`b_key << hmac.npad[..blocksize - b_key.len]`
crypto: add hmac module (#6614) 2020-10-14 12:25:58 +02:00			`}`
all: replace []byte with []u8 2022-04-15 14:35:35 +02:00			`mut inner := []u8{}`
tools: make `v test-cleancode` test everything by default (#10050) 2021-05-08 12:32:29 +02:00			`for i, b in hmac.ipad[..blocksize] {`
crypto: add hmac module (#6614) 2020-10-14 12:25:58 +02:00			`inner << b_key[i] ^ b`
			`}`
			`inner << data`
			`inner_hash := hash_func(inner)`
all: replace []byte with []u8 2022-04-15 14:35:35 +02:00			`mut outer := []u8{cap: b_key.len}`
tools: make `v test-cleancode` test everything by default (#10050) 2021-05-08 12:32:29 +02:00			`for i, b in hmac.opad[..blocksize] {`
crypto: add hmac module (#6614) 2020-10-14 12:25:58 +02:00			`outer << b_key[i] ^ b`
			`}`
			`outer << inner_hash`
			`digest := hash_func(outer)`
			`return digest`
			`}`
crypto.hmac: implement hmac.equal/2 too 2020-10-14 16:21:43 +02:00
crypto: add missing documentation to all pub functions (#8251) 2021-01-23 13:33:49 +01:00			`// equal compares 2 MACs for equality, without leaking timing info.`
all: replace "NB:" with "Note:" (docs/comments) 2022-03-06 18:01:22 +01:00			`// Note: if the lengths of the 2 MACs are different, probably a completely different`
crypto.hmac: implement hmac.equal/2 too 2020-10-14 16:21:43 +02:00			`// hash function was used to generate them => no useful timing information.`
all: replace []byte with []u8 2022-04-15 14:35:35 +02:00			`pub fn equal(mac1 []u8, mac2 []u8) bool {`
crypto.hmac: implement hmac.equal/2 too 2020-10-14 16:21:43 +02:00			`return subtle.constant_time_compare(mac1, mac2) == 1`
			`}`